Icon hamburger
US
What job do you want?
Apply to this job.
Think you're the perfect candidate?
Apply Now
Thumsup

You’re being taken to an external site to apply.

Enter your email below to receive job recommendations for similar positions.
Mq77yd6x5xm3w4fllvw

Vulnerability Analyst

The Staffing Resource Group, Inc Fort Meade, MD Full-Time
$110,346.00 (Careerbuilder est.)
Apply Now

Job Title: Vulnerability Identification, Remediation, And Mitigation / Vulnerability Management

Location: Fort Meade, MD

Salary: $100k/yr.

SRG is looking for experienced Vulnerability Analysts to support Joint Force Headquarters – Department of Defense Networks (JFHQ-DODIN) in analyzing software/hardware vulnerabilities and the impact those vulnerabilities will have to DoD systems and the contribute to the mitigation strategies.

Responsibilities/Duties/Tasks

·        Establish communications with vendors for the release of newly identified vulnerabilities and to ensure they understand the specialized requirements of DoD information systems.

·        Leverage a specialized understanding of vendor products and fix actions to develop mitigations orders for the identified vulnerabilities.

·        Compile daily, weekly and annual vulnerability metrics associated with affected and non-affected DoD products.

·        Utilize the tracking tools to upload information for DoD component consumption and vulnerability compliance tracking.

·        Develop, staff, and maintain accurate JFHQ-DODIN orders.

·        Create situational awareness products to provide DoD components with detailed information related to vulnerabilities and appropriate mitigation strategies.

·        Identify, analyze, and develop mitigation or remediation actions for system and network vulnerabilities.

·        Prioritize identified vulnerabilities based upon severity, potential operational impact, and other factors for DoD.

·        Conduct open source research to identify and analyze known and unknown vulnerabilities.

·        Analyze issues affecting DoD components with vendor provided fixes and contact the appropriate vendor for a defined and attainable solution.

·        Conduct coordination with DISA/FSO, DoD Combatant Commands, Services, Agencies, Field Activities, Intelligence Agencies, LE, US Government organizations.

·        Provide notification of potential threats by tracking vulnerabilities and exploits, propagation of worms and viruses as they migrate throughout DoD and globally Develop, staff, and release analysis findings in technical analysis reports to DoD Community

Required Experience/Qualifications

  • Active DoD TS/SCI clearance
  • Proficient in developing briefing materials, administrative, and logistics support
  • Have a working understanding of the Risk Management Framework (RMF).
  • Have specialized knowledge in computer network theory and understand IT standards, including the OSI model, and the methods of exploiting those standards.
  • Have strong interpersonal, organizational and critical thinking/problem solving skills
  • Must be flexible, dependable and be able to multi-task with priorities
  • Knowledge of Host Base Security Systems (HBSS)
  • 3 years experience with IA Experience with and/or a working knowledge of the following : 
    • Networking infrastructure: routers, switches, and web security gateway 
    • TCP/IP Protocols and Services 
    • Identification and Access Management 
    • SIEM Reports 

Desired Experience/Qualifications

  • Knowledge of Tanium
  • Enterprise Mission Assurance Support Service (eMASS) 
  • Experience at USCYBERCOM or Cyber Service Centers or equivalent.
  • Demonstrated understanding of cyber advanced persistent threats, actors, infrastructure, and TTP's.
  • Demonstrate understanding of defensive cyber operations to include cyber incident response, and Intrusion Detection Systems (IDS).
  • Experience with network analysis and coursework preferred.
  • MA or MS degree preferred.
  • DoD 8570 IAT Level II
  • Certification in any of the following areas: A+, Network+, Security+, CISSP

SRG Commercial is a leading provider of information technology, training, engineering, accounting and intelligence analytical services for agencies in the intelligence, defense, homeland security, cyber security, and federal civilian markets. SRG utilizes an innovative approach to identify and qualify talent that is unique to the federal contracting industry, featuring a cutting edge platform that allows us to rapidly and precisely match professionals to client requirements. We have a proprietary database of over one million candidates and maintain continuous contact with our qualified talent. 

EEO/ADA

Recommended skills

Incident Response
Intrusion Detection Systems
Vulnerability
Security Information And Event Management
Information Security
Communication

Location

CareerBuilder Estimated Salary What is the Careerbuilder Estimated Salary? Only about 20% of the jobs in our search results contain salary information. When a job posting doesn’t include a salary, we estimate it by looking at similar jobs in the same industry in that location. It is not necessarily endorsed by the employer and actual compensation may vary based on your experience.

x

What is the Careerbuilder Estimated Salary?

Only about 20% of the jobs in our search results contain salary information. When a job posting doesn’t include a salary, we estimate it by looking at similar jobs in the same industry in that location. It is not necessarily endorsed by the employer and actual compensation may vary based on your experience.
This estimation is based on Job title, Industry, Location and Skills
$110,346
Avg. Yearly Salary
Apply to this job.
Think you're the perfect candidate?
Apply Now

Help us improve CareerBuilder by providing feedback about this job: Report this job

Report this Job

Once a job has been reported, we will investigate it further. If you require a response, submit your question or concern to our Trust and Site Security Team

CAREERBUILDER TIP

For your privacy and protection, when applying to a job online, never give your social security number to a prospective employer, provide credit card or bank account information, or perform any sort of monetary transaction. Learn more.

By applying to a job using CareerBuilder you are agreeing to comply with and be subject to the CareerBuilder Terms and Conditions for use of our website. To use our website, you must agree with the Terms and Conditions and both meet and comply with their provisions.